Security Vulnerabilities - CVEs Published In May 2025
Memory corruption during array access in Camera kernel due to invalid index from invalid command data.
CVSS Score
7.8
EPSS Score
0.001
Published
2025-05-06
Memory corruption Camera kernel when large number of devices are attached through userspace.
CVSS Score
7.8
EPSS Score
0.001
Published
2025-05-06
Memory corruption while prociesing command buffer buffer in OPE module.
CVSS Score
7.8
EPSS Score
0.001
Published
2025-05-06
Memory corruption during concurrent access to server info object due to unprotected critical field.
CVSS Score
6.6
EPSS Score
0.001
Published
2025-05-06
Memory corruption while handling schedule request in Camera Request Manager(CRM) due to invalid link count in the corresponding session.
CVSS Score
6.6
EPSS Score
0.001
Published
2025-05-06
Memory corruption during concurrent access to server info object due to incorrect reference count update.
CVSS Score
7.8
EPSS Score
0.001
Published
2025-05-06
Memory corruption when blob structure is modified by user-space after kernel verification.
CVSS Score
7.8
EPSS Score
0.0
Published
2025-05-06
Memory corruption during concurrent buffer access due to modification of the reference count.
CVSS Score
7.8
EPSS Score
0.001
Published
2025-05-06
Memory corruption during concurrent SSR execution due to race condition on the global maps list.
CVSS Score
7.8
EPSS Score
0.0
Published
2025-05-06
A vulnerability classified as critical has been found in D-Link DIR-890L and DIR-806A1 up to 100CNb11/108B03. Affected is the function sub_175C8 of the file /htdocs/soap.cgi. The manipulation leads to command injection. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used. This vulnerability only affects products that are no longer supported by the maintainer.
CVSS Score
5.3
EPSS Score
0.028
Published
2025-05-06